Tenda Ac6 V5.0 vulnerabilities

CVE-2025-32010 [HIGH] CWE-121 CVE-2025-32010: A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP response can lead to arbitrary code execution. An attacker can send an HTTP response to trigger this vulnerability.

CVE-2025-24322 [HIGH] CWE-304 CVE-2025-24322: An unsafe default authentication vulnerability exists in the Initial Setup Authentication functional An unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted network request can lead to arbitrary code execution. An attacker can browse to the device to trigger this vulnerability.

CVE-2025-31355 [HIGH] CWE-494 CVE-2025-31355: A firmware update vulnerability exists in the Firmware Signature Validation functionality of Tenda A A firmware update vulnerability exists in the Firmware Signature Validation functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted malicious file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

CVE-2025-27129 [CRITICAL] CWE-288 CVE-2025-27129: An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.

CVE-2025-24496 [HIGH] CWE-288 CVE-2025-24496: An information disclosure vulnerability exists in the /goform/getproductInfo functionality of Tenda An information disclosure vulnerability exists in the /goform/getproductInfo functionality of Tenda AC6 V5.0 V02.03.01.110. Specially crafted network packets can lead to a disclosure of sensitive information. An attacker can send packets to trigger this vulnerability.

CVE-2025-30256 [HIGH] CWE-772 CVE-2025-30256: A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5.0 A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted series of HTTP requests can lead to a reboot. An attacker can send multiple network packets to trigger this vulnerability.